Cyber Security Engineer - NV1

Location Canberra
Salary Negotiable
Job type Contract
Discipline Cyber Security
Reference BBBH3814_1771370021

Role Title

Cyber Security Engineer

Location

Canberra, ACT

Clearance required

Active NV1 required

Company overview
Our client is an Australian‑owned systems integrator supporting government and private sector organisations with specialist ICT services. They deliver outcomes for small to medium agencies through expert people, strong relationships and fit‑for‑purpose technologies.

This contract opportunity will be working for the Department of Prime Minister and Cabinet.

Job Description

The Security Engineer will work closely with application, infrastructure and cloud teams to onboard new event log sources into the Department's SIEM solution. The focus of the role is to maximise log fidelity, improve visibility for CSOC analysts, and identify opportunities to reduce log storage costs.
The successful candidate will also bring generalist technical capabilities and work collaboratively with business stakeholders, system owners and system administrators to support broader technology initiatives.

Duties and Responsibilities

  • Monitor operations of the SIEM solution to ensure it remains operational and fit for use by CSOC analysts.
  • Undertake improvements to the SIEM solution to enhance visibility of key systems and increase CSOC analyst productivity.
  • Monitor event log ingestion rates and perform optimisation activities to improve performance and reduce costs where possible.
  • Analyse log ingestion trends.
  • Engage with system owners to ensure event logs meet required formatting and fidelity standards.
  • Maintain SIEM integrations, including intelligence feeds and APIs to ICT applications and systems.
  • Provide support for incident response and remediation activities.
  • Develop standard operating procedures for the maintenance of cybersecurity toolsets.

Knowledge/Skills required

  • Extensive hands-on operational experience (3+ years) in SIEM engineering, CSOC or security operations roles.
  • Extensive experience onboarding, pre-processing and structuring logs from network devices, endpoints, cloud services, applications and threat intelligence feeds into SIEM technologies.
  • Extensive experience in the design, development and management of SIEM technologies, CSOC dashboards, reports and playbooks.
  • Experience creating and tuning correlation rules, dashboards and alerts to reduce false positives.
  • Proven ability to ensure consistent log ingestion, data parsing and system performance.
  • Strong stakeholder engagement and communication skills.
  • Understanding of operating systems, applications, networking, cloud technologies, APIs and metrics.
  • Knowledge of cyber-attack tactics, techniques and procedures, with the ability to identify such activity in a CSOC environment.
  • Experience in proactive threat hunting and participating in incident response activities.
  • Experience working with technologies such as EDR, XDR, SOAR and related monitoring tools.

Diversity and Inclusion

We value diversity and are committed to creating an inclusive environment for all employees.

Veterans

Defence and Federal Government industry experience is highly desirable. We strongly encourage veterans and individuals with Defence experience to apply. Your unique skills and background are highly valued, and we are committed to supporting your transition into this role.

About Cleared

At Cleared, we provide tailored recruitment solutions to individuals seeking their next opportunity and to organisations searching for talent within Defence Industry, Intelligence and National Security.